Re: testmyids

[Jason <security () brvenik com>]

<begin common mail>

Hello Mr Chas Tomlin,

I just got this alert on my IDS.

<insert alert here>

I WANT TO KNOW WHY YOU ARE ATTACKING MY SYSTEMS. I HAVE REPORTED YOU TO
THE AUTHORITIES AND IF YOU DO NOT STOP I WILL HAVE YOU ARRESTED. STOP IT
NOW OR FACE THE CONSEQUENCES.

</end>

Chas Tomlin wrote:
> Hi list,
>
> I've just registered www.testmyids.com which currently contains the
> output of the id command for the root user. If your snort IDS is setup
> correctly and you have the attack.responses alerts enabled it should
> alert on signature 498.
>
> Hope this is useful to someone.
>
> Chas Tomlin
>
>
>
> -------------------------------------------------------------------------
> Using Tomcat but need to do more? Need to support web services, security?
> Get stuff done quickly with pre-integrated technology to make your job easier
> Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo
> http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
> _______________________________________________
> Snort-users mailing list
> Snort-users () lists sourceforge net
> Go to this URL to change user options or unsubscribe:
> https://lists.sourceforge.net/lists/listinfo/snort-users
> Snort-users list archive:
> http://www.geocrawler.com/redir-sf.php3?list=snort-users

-------------------------------------------------------------------------
Using Tomcat but need to do more? Need to support web services, security?
Get stuff done quickly with pre-integrated technology to make your job easier
Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users